Your company is participating in a Cyber Security Education Program.
This CERB Phishing Attack included the following social engineering techniques:
- Topical subject (CERB) to be consistent with current news.
- Sense of urgency to act so you don't lose your money.
- Government of Canada logo to appear legitimate.
- Multiple languages to appear official.
- Links and sender names masked with cra-arc/gov.ca to appear correct.
How to spot this was a phishing email:
- Was this an email you expected to receive? No - Be cautious
- Is it asking you to do something before some urgent deadline? - Yes - This is a typical tactic used
- The sender named "CERB Eligibility" email address was suspicious (do-not-reply@online-statistics.site)
- The link provided https://cerb-2020-eligibility.gov.ca/register (if checked/mouse hover) was directing to http://cra-arc.lang-en.ca/...
